Senior Information Security Analyst bei FGB Financial Services (Guaranty Bank)

Great employees are essential to maintaining the confidence our customers place in us. FGB believes that our employees are our greatest asset as demonstrated in their professionalism and dedication. We encourage open communication and strive to cultivate an environment in which our employees will contribute new ideas and innovations that will help us excel. As we grow, we want YOU to join our team to help fulfill our mission of serving the banking needs in our local communities.

Our full-time employees are eligible for amazing benefits including medical, dental, vision, and basic life/AD&D insurance, prescription drug benefits, long term disability, and salary continuance (short-term disability). In addition, they get paid holidays, paid vacation and sick leave, a tuition reimbursement program, 401k, section 125 cafeteria plan, and the opportunity to earn FGB stock grants. Apply today to enjoy these benefits and more!

Position Summary

The Senior Information Security Analyst will play a pivotal role in strengthening the organization’s information security posture, with an emphasis on cloud security, governance, automation, and identity management. This role combines hands-on technical defense with governance and compliance responsibilities to ensure FGB meets FFIEC, NIST CSF, and internal risk management expectations.

Essential Duties and Responsibilities

1. Cloud Security & Governance
   • Lead security reviews and hardening of Azure and Microsoft 365 environments including Defender for Cloud, Sentinel, Purview, and Entra ID.
   • Ensure alignment with NIST CSF, FFIEC IT Handbook, and internal IT policies across cloud and hybrid deployments.
   • Provide guidance for secure adoption of SaaS applications and vendor integrations.
2. Governance, Risk, and Compliance (GRC)
   • Support audit readiness by maintaining evidence mapping to controls (NIST, FFIEC, GLBA).
   • Collaborate with business units to ensure third-party vendor risk assessments meet security standards.
   • Develop and enforce security policies, standards, and procedures that balance compliance with business agility.
3. Identity and Access Management (IAM)
   • Administer and enhance Azure Entra ID (AD), MFA, Conditional Access, Just-In-Time access, and Privileged Access Management (PAM).
   • Drive adoption of Zero Trust security principles across users, devices, and applications.
   • Monitor and remediate identity-related threats and anomalies using advanced logging and automation.
4. Security Operations & Automation
   • Lead SIEM (Azure Sentinel, Splunk, or equivalent) monitoring and develop automated detections and playbooks.
   • Implement SOAR automation for incident response, vulnerability management, and compliance monitoring.
   • Use scripting (Python, PowerShell) to streamline log analysis, access reviews, and security reporting.
5. Threat & Vulnerability Management
   • Manage vulnerability identification, patching cycles, and compensating controls across on-prem and cloud environments.
6. Collaboration & Training
   •  Partner with IT and business teams to embed security into projects from the start.
7. Other
   •  Adhere to the BSA policy and all other bank policies.
   •  Other duties and responsibilities may be assigned by supervisor.

Minimum Qualifications (Education, Experience, Skills)

• 4+ years of information security experience, with at least 2 years in Azure/Microsoft 365 security.
• Strong background in IT infrastructure (compute, storage, networking) plus hands-on cloud administration.
• Proficiency in security scripting and automation (Python, PowerShell, or similar).

Preferred Qualifications (Education, Experience, Skills)

• Certifications: AZ-500 (Azure Security), CISSP, CISM, GIAC, or Security+.
• Experience with NIST CSF control mapping, FFIEC requirements, and regulatory audits.
• Familiarity with SOAR platforms and workflows.

Physical Demands and Work Environment

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodation may be made to enable individuals with disabilities to perform the functions.

While performing the duties of this position, the employee is regularly required to talk and hear. The employee frequently is required to use hands or fingers, handle, or feel objects, tools, or controls. The employee is occasionally required to stand; walk; sit; reach with hands and arms; climb or balance; and stoop, kneel, crouch, or crawl.

The employee must occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this position include close vision, distance vision, color vision, peripheral vision, and the ability to adjust focus.

The noise level in the work environment is usually moderate.

This job description in no way states or implies that these are the only duties to be performed by the employee(s) incumbent in this position.  Employees will be required to follow any other job-related instructions and to perform any other job-related duties requested by any person authorized to give instructions or assignments.

All duties and responsibilities are essential functions and requirements and are subject to possible modification to reasonably accommodate individuals with disabilities.  To perform this job successfully, the incumbents will possess the skills aptitudes and abilities to perform each duty proficiently.  Some requirements may exclude individuals who pose a direct threat or significant risk to the health or safety of themselves or others.  The requirements listed in this document are the minimum levels of knowledge, skills, or abilities.